5836 matches found
[SECURITY] Fedora 38 Update: python-pydantic-1.10.14-5.fc38
Data validation and settings management using python type hinting...
Fedora 39 : chromium (2024-decb7e94a1)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-decb7e94a1 advisory. update to 124.0.6367.78 Critical CVE-2024-4058: Type Confusion in ANGLE High CVE-2024-4059: Out of bounds read in V8 API High CVE-2024-4060: Use aft...
Wazuh Analysis Engine Event Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Wazuh. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Analysis Engine service, which listens on TCP port 1514 by default. The issue results from the...
Cross Site Scripting(XSS)
chrome is vulnerable to Cross Site ScriptingXSS. The vulnerability is due to insufficient data validation in the Browser Switcher component of Google Chrome, allows a remote attacker to inject scripts or HTML into a privileged page via a malicious file...
Ivanti Avalanche WLInfoRailService Integer Overflow Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information or create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLInfoRailService, which listens on...
Ivanti Avalanche getMasterAdhocCollectionsPath Unrestricted File Upload Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche. Authentication is required to exploit this vulnerability. The specific flaw exists within the getMasterAdhocCollectionsPath method. The issue results from the lack of proper...
Fedora 39 : chromium (2024-12edb9dec8)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-12edb9dec8 advisory. update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914: Use aft...
FreeBSD : chromium -- multiple security fixes (9bed230f-ffc8-11ee-8e76-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 9bed230f-ffc8-11ee-8e76-a8a1599412c6 advisory. - Object corruption in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to...
Fedora 38 : chromium (2024-5d8f4f86b0)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5d8f4f86b0 advisory. update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914: Use aft...
Debian dsa-5668 : chromium - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5668 advisory. - Object corruption in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page...
The vulnerability of the Android operating system on Pixel phones allows attackers to gain increased privileges.
The vulnerability of the Android operating system on Pixel phones exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...
Chromium: CVE-2024-3843 Insufficient data validation in Downloads
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-3841 Insufficient data validation in Browser Switcher
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
SUSE CVE-2024-3841
Insufficient data validation in Browser Switcher in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to inject scripts or HTML into a privileged page via a malicious file. Chromium security severity: Medium...
Google Chrome Data Validation Error Vulnerability (CNVD-2024-29288)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a data validation error vulnerability that can be exploited by attackers to bypass security restrictions...
Google Chrome Data Validation Error Vulnerability
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a Data Validation Error vulnerability, which can be exploited by attackers to inject script or HTML into a privileged page via a malicious file...
Microsoft Edge (Chromium) < 124.0.2478.51 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 124.0.2478.51. It is, therefore, affected by multiple vulnerabilities as referenced in the April 18, 2024 advisory. - Microsoft Edge for Android Chromium-based Information Disclosure Vulnerability CVE-2024-29986 -...
KLA65692 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An...
CVE-2024-3843
Insufficient data validation in Downloads in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-3841
Insufficient data validation in Browser Switcher in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to inject scripts or HTML into a privileged page via a malicious file. Chromium security severity: Medium...